Code Review Request for 7200306: SunPKCS11 provider delays the check of DSA key size for SHA1withDSA to sign() instead of init()
Valerie (Yu-Ching) Peng
valerie.peng at oracle.com
Wed Nov 20 01:37:29 UTC 2013
Can someone please help review my fixes for 7200306: SunPKCS11 provider
delays the check of DSA key size for SHA1withDSA to sign() instead of
init()?
Native PKCS11 libraries don't seem to check the key during the
initialization calls (triggered by initSign()/initVerify()).
Rather, it errors out during the subsequent update() calls. So, I added
necessary key length checks.
Webrev:
http://cr.openjdk.java.net/~valeriep/7200306/webrev.00/
Thanks,
Valerie
More information about the security-dev
mailing list